Chapter 2 Flashcards
A ____ attack begins with the attacker creating digests of common dictionary words, and then comparing those in a stolen password file.
dictionary
___ is sending an e-mail or displaying a Web announcement that falsely claims to be from a legitimate enterprise, in an attempt to trick the user into surrendering private information
Phishing
Social engineering ____ means to create a fictitious character and then play out the role of that person on a victim.
impersonation
The average phishing site only exists for ____ days to prevent law enforcement agencies from tracking the attackers.
3.8
Instead of asking the user to visit a fraudulent Web site, ____ automatically redirects the user to the fake site.
pharming
Whereas phishing involves sending millions of generic e-mail messages to users, ____ targets only specific users.
spear phishing
____ identify individuals within the organization who are in positions of authority.
Organizational charts
____ may reveal the true level of security within the organization.
Policy manuals
____ involves using someone’s personal information, such as a Social Security number, to establish bank or credit card accounts that are then left unpaid, leaving the victim with the debts and ruining their credit rating
Identity theft
Grouping individuals and organizations into clusters or groups based on their likes and interests is called ____.
social networking
The Web sites that facilitate linking individuals with common interests and function as an online community of users are called ____
social networking sites
____ means an attacker who pretends to be from a legitimate research firm asks for personal information
Pretexting
Stolen wallets and purses contain personal information that can be used in identity theft. This is known as ____.
stealing
Using a standard ____ form, attackers can divert all mail to their post office box so that the victim never sees any charges made.
change-of-address
The best approach to establishing strong security with passwords is to use a ____
password management tool
A ____ is a program that lets a user create and store multiple strong passwords in a single user database file that is protected by one strong master password.
password management application
The ____ of 2003 contains rules regarding consumer privacy.
Fair and Accurate Credit Transactions Act
FACTA grants consumers the right to request one free credit report from each of the three national credit-reporting firms every ____.
12 months
If a consumer finds a problem on her credit report, she must first send a letter to the credit-reporting agency. Under federal law, the agency has ____ days to investigate and respond to the alleged inaccuracy and issue a corrected report
30
A ____ is a numerical measurement used by lenders to assess a consumer’s creditworthiness.
Credit Score
Credit score reports cost about ____.
$10
use of a telephone call instead of e-mail to contact a potential victim
Vishing
one type of spear phishing
Whaling
information entered is observed by another person
Shoulder surfing
